Free Malware Removal Forum

Welcome to MalwareRemoval.com,What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

I have a form of Malware I cannot seem to get rid of even if I quarantine or delete it. I cannot download anything, I cannot get my WinXP to do an error check. I cannot update my definitions on my AdAdware 2008.

Welcome to the MWR forums. My name is peku006. I would be glad to take a look at your log and help you with solving any malware problems. HijackThis logs can take a while to research. Please be patient and I'd be grateful if you would note the following:

1. If you don't know, stop and ask! Don't keep going on.2. Please reply to this thread. Do not start a new topic. Please stay at one forum for help.3. Please continue reading posts until I give the All Clear. It is important to note this, as a clean looking HijackThis is not always a sign your system is clean.

Note: I am still in training here at Malware Removal, however I will be working under the direct supervision of one of our Malware Experts. Any recommendations will first be approved before being given to you. Because of this, there may be a short delay in getting our responses to you, however be assured that we will be working diligently on your problem.

Why do you not have an antivirus program installed? It is simply not safe to use the Internet without.

Anti-virus softwareare programs that detect, cleanse, and erase harmful virus files on a computer, Web server, or network. Unchecked, virus files can unintentionally be forwarded to others, including trading partners and thereby spreading infection. Because new viruses regularly emerge, anti-virus software should be updated frequently. Anti-virus software can scan the computer memory and disk drives for malicious code. They can alert the user if a virus is present, and will clean, delete (or quarantine) infected files or directories. Please download a free anti-virus software from one these excellent vendorsNOW:

It is strongly recommended that you run only one antivirus program at a time. Having more than one antivirus program active in memory uses additional resources and can result in program conflicts and false virus alerts. If you choose to install more than one antivirus program on your computer, then only one of them should be active in memory at a time.

1 - WAREOUT

Please print out or save this set of instructions as you will be rebooting the PC.

Double-click SmitfraudFix.exe.Select option #1 - Search by typing 1 and press "Enter"; a text file will appear, which lists infected files (if present).Please copy/paste the content of that report into your next reply.

**If the tool fails to launch from the Desktop, please move SmitfraudFix.exe directly to the root of the system drive (usually C:), and launch from there.

Note : process.exeis detected by some antivirus programs (AntiVir, Dr.Web, Kaspersky) as a "RiskTool"; it is not a virus, but a program used to stop system processes. Antivirus programs cannot distinguish between "good" and "malicious" use of such programs, therefore they may alert the user.http://www.beyondlogic.org/consulting/proc...processutil.htm

3 - uninstall list

Make an uninstall list using HijackThisTo access the Uninstall Manager you would do the following:

1. Start HijackThis2. Click on the Config button3. Click on the Misc Tools button4. Click on the Open Uninstall Manager button.5. Click on the Save list... button and specify where you would like to save this file. When you press Save button a notepad will open with the contents of that file. Simply copy and paste the contents of that notepad here on your next reply.

4 - Run HijackthisClick on the Do a system scan and save a logfile button. It will scan and the log should open in notepad

peku006Thank you for your reply. I did install AVG prior to contacting you. I originally had Ad Adware but replaced it with AVG. Here are the reports you requested:Username "tes" - 15/07/2008 18:47:37 [Fixwareout edited 9/01/2007]

There's some malware in your Java cache so lets clear it.Please empty the entire contents of this folder:(not the folder itself, but all in it)C:\Documents and Settings\tes\Application Data\Sun\Java\Deployment\cache\6.0then..

Press Start

Go to Control Panel

Click Java

Under Temporary Internet Files click Settings...

Now click Delete files...

Select both options and click OK

The temporary files will now be deleted.

When done click OK twice and close Control Panel

After that...

Congratulations, your log looks clean!

This is a good time to clear your existing system restore points and establish a new clean restore point:

OTMoveIt will download a list from the Internet, if your firewall or other defensive programmes alerts you, allow it access.

Select Yes when the "Begin cleanup Process?" prompt appears.

If you are prompted to Reboot during the cleanup, select Yes.

When finished exit out of OTMoveIt

The tool will delete itself once it finishes, if not delete it by yourself.

Here are some free programs I recommend that could help you improve your computer's security.

Spybot Search and Destroy 1.5.2Download it from here. Just choose a mirror and off you go.Find here the tutorial on how to use Spybot properly here

Install SpyWare Blaster 4.0Download it from hereFind here the tutorial on how to use Spyware Blaster here

Install WinPatrolDownload it from hereHere you can find information about how WinPatrol works here

Install FireTrust SiteHoundYou can find information and download it from here

Install MVPS Hosts Filefrom hereThe MVPS Hosts file replaces your current HOSTS file with one containing well know ad sites etc. Basically, this prevents your computer from connecting to those sites by redirecting them to 127.0.0.1 which is your local computer.Find Tutorial here : http://www.mvps.org/winhelp2002/hosts.htmNote:"Be sure to disable the service "DNS Client" FIRST to allow the use of large HOSTS files without slowdowns.If this isn't done first, the next reboot may take a VERY LONG TIME.This is how to do it. First be sure you are signed in as a user with administrative privileges:

Stop and Disable the DNS Client ServiceGo to Start, Run and type Services.msc and click OK.Under the Extended Tab, Scroll down and find this service.DNS ClientRight-Click on the DNS Client Service. Choose PropertiesSelect the General tab. Click on the Stop button.Click the Arrow-down tab on the right-hand side at the Start-up Type box.From the drop-down menu, click on ManualClick the Apply tab, then click OK

Update your Antivirus programs and other security products regularly to avoid new threats that could infect your system.You can use one of these sites to check if any updates are needed for your pc.Secunia Software InspectorF-secure Health Check

Visit Microsoft often to get the latest updates for your computer.http://www.update.microsoft.comNote: If you are running Windows XP SP2, you should upgrade to SP3.

PekuHave done Java and Create a new restore point. The OTMoveIt download is no longer available. I managed to locate a OTMoveIt2 and do that but it didnt remove the programmes I downloaded to clean up my comp. Ive uninstalled them manually and my comp seems to be working as it should.Id like to thank you for your help. Hopefully, you wont hear from me again!!SincerelyAlpha!!

Who is online

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.